Loading…
Attending this event?
Seattle, WA
December 10–13, 2018
Click Here for More Information & Registration
View Venue Map
View analytic
Tuesday, December 11 • 10:50am - 11:25am
Birds of a Feather: What Should a Container Build Manifest Look Like? - Nisha Kumar, VMware

Sign up or log in to save this to your schedule and see who's attending!

Feedback form is now closed.
We create containers by reusing several pieces of software from disparate locations, internal and external to our organization. We then rely on the providers (trusted or not) of the pieces to publish the software component list, or we run vulnerability and compliance scan tools against the fully built containers before pushing it to an internal registry. These methods are more fail safes than applying software delivery best practices, i.e., start from a well defined Bill of Materials (BoM).

Can we build a container from a well defined software component manifest? What would that manifest look like? This BoF is to discuss what we need in order to build a better container delivery pipeline that adheres to software delivery best practices. To kick us off, I will present a survey on currently used tools and practices.

Speakers
avatar for Nisha Kumar

Nisha Kumar

Open Source Engineer, VMware
Nisha is the maintainer of the Tern project (https://github.com/vmware/tern). She is an Open Source Engineer advising on container compliance at VMware. She is also a hardware hacker and a mom.



Tuesday December 11, 2018 10:50am - 11:25am
606-609